O'Reilly logo
live online training icon Live Online training

Introduction to Cisco Next-Generation Firewalls

Omar Santos

As the number of cyber-attacks rises, demand for safe and secure data becomes increasingly important. This means that companies need professionals who can keep their information safe. In this training, you will learn how to get started in cyber security using Cisco’s Next Generation Firewalls. Omar Santos -- best-selling security author, speaker and Principal Engineer in the Cisco Product Security Incident Response Team (PSIRT) within Cisco's Security Research and Operations – will walk you through configuring and troubleshooting best practices for the Next-Generation Firewall (NGFW), Next-Generation Intrusion Prevention System (NGIPS), and Advanced Malware Protection (AMP). This course will additionally help students prepare for the Cisco CCNA Security, Cisco CCNA Cyber Ops, Cisco CCNP Security, and Cisco CCIE Security certifications.

What you'll learn-and how you can apply it

  • Cisco Next-Generation Firewalls fundamentals.
  • Best practices for the deployment and configuration of Cisco Next-Generation Firewall (NGFW), Next-Generation Intrusion Prevention System (NGIPS), and Advanced Malware Protection (AMP).
  • Best practices and troubleshooting of deployment issues, traffic control policies, system administration, user identity, and access control.
  • Best practices for generating log, report and troubleshooting data.
  • Cover firewall topics that will help students preparing for the Cisco CCNA Security, Cisco CCNP Security, or Cisco CCIE Security certifications.

This training course is for you because...

  • This training is for anyone who deploys, configures, and manages Cisco firewalls.
  • This training will help students prepare for the Cisco CCNA Security, Cisco CCNP Security, or Cisco CCIE Security certifications.

Prerequisites

  • Basic understanding of computing concepts (hardware, software, networking, storage, and cloud computing).
  • Basic understanding of cybersecurity.

Recommended Preparation If you are new to Cisco's security solutions or to cybersecurity, it is recommended that you watch the following videos. - Security Principles (from CCNA Cyber Ops SECFND 210-250 Complete Video Course) - Fundamentals of Cryptography and PKI (from CCNA Cyber Ops SECFND 210-250 Complete Video Course) - Threat Analysis (from CCNA Cyber Ops SECOPS 210-255 Complete Video Course) - Introduction to NetFlow and IPFIX (from Cisco NetFlow for Cyber Security Big Data Analytics LiveLessons ) - Overview of Ethical Hacking and Penetration Testing (from Security Penetration Testing The Art of Hacking Series LiveLessons)

Resources - CCNA Cyber Ops Security Fundamentals - Cisco Firepower and Advanced Malware Protection (AMP) LiveLessons - Cisco Next-Generation Security Solutions: All-in-one Cisco ASA Firepower Services, NGIPS, and AMP

About your instructor

  • Omar Santos is a Principal Engineer in the Cisco Product Security Incident Response Team (PSIRT) within Cisco's Security Research and Operations. He mentors and leads engineers and incident managers during the investigation and resolution of security vulnerabilities in all Cisco products, including cloud services. Omar has been working with information technology and cyber security since the mid-1990s. Omar has designed, implemented, and supported numerous secure networks for Fortune 100 and 500 companies and the U.S. government. He is an active member of the security community, where he leads several industry-wide initiatives and standard bodies. Omar is often delivering technical presentations at many conferences and he is the author of over 15 books and video courses.

Schedule

The timeframes are only estimates and may vary according to how the class is progressing

DAY ONE

  • Introduction to the Cisco Firepower Threat Defense (FTD) (25 minutes)
  • FTD on ASA 5500-X Series Hardware (20 minutes)

Break (10 minutes)

  • FTD on the Firepower eXtensible Operating System (FXOS) (30 minutes)
  • Firepower Management Center (FMC) (30 minutes)

Break (10 minutes)

  • Licensing and Management Tasks (25 minutes)
  • Firepower Deployment in Routed Mode and in Transparent Mode (30 minutes)

DAY TWO

  • Inspecting vs. Blocking Traffic Inline (20 minutes)
  • Advance Network Traffic Analysis (25 minutes)

Break (10 minutes)

  • Rate Limiting (25 minutes)
  • Blacklisting Malicious Traffic and DNS Queries (30 minutes)

Break (10 minutes)

  • URL Filtering, Categorization, Risk Analysis, and Reputation (30 minutes)
  • Advanced Malware Detection and Retrospective Analysis (30 minutes)